|
286321
|
- |
|
redhat
|
storage_server
|
Red Hat Storage 2.0 allows local users to overwrite arbitrary files via a symlink attack on the (1) e, (2) local-bricks.list, (3) bricks.err, or (4) limits.conf files in /tmp.
|
CWE-59
Link Following
|
CVE-2013-4157
|
2024-11-21 10:54 |
2013-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286322
|
- |
|
baramundi
|
management_suite
|
An unspecified DLL file in Baramundi Management Suite 7.5 through 8.9 uses a hardcoded encryption key, which makes it easier for attackers to defeat cryptographic protection mechanisms by leveraging …
|
CWE-255
Credentials Management
|
CVE-2013-3625
|
2024-11-21 10:54 |
2013-10-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286323
|
- |
|
baramundi
|
management_suite
|
The OS deployment feature in Baramundi Management Suite 7.5 through 8.9 stores credentials in cleartext on deployed machines, which allows remote attackers to obtain sensitive information by reading …
|
CWE-310
Cryptographic Issues
|
CVE-2013-3624
|
2024-11-21 10:54 |
2013-10-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286324
|
- |
|
ibm
|
infosphere_information_server
|
IBM InfoSphere Information Server 8.0, 8.1, 8.5 through FP3, 8.7, and 9.1 allows remote attackers to hijack sessions and read cookie values, or conduct phishing attacks to capture credentials, via un…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-4067
|
2024-11-21 10:54 |
2013-10-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286325
|
- |
|
ibm
|
infosphere_information_server
|
IBM InfoSphere Information Server 8.0, 8.1, 8.5 through FP3, 8.7, and 9.1 allows remote attackers to conduct clickjacking attacks by creating an overlay interface on top of the Web Console interface.
|
CWE-20
Improper Input Validation
|
CVE-2013-4066
|
2024-11-21 10:54 |
2013-10-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286326
|
- |
|
ibm
|
db2
|
The Fast Communications Manager (FCM) in IBM DB2 Enterprise Server Edition and Advanced Enterprise Server Edition 10.1 before FP3 and 10.5, when a multi-node configuration is used, allows remote atta…
|
CWE-20
Improper Input Validation
|
CVE-2013-4032
|
2024-11-21 10:54 |
2013-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286327
|
- |
|
mongodb
|
mongodb
|
The find prototype in scripting/engine_v8.h in MongoDB 2.4.0 through 2.4.4 allows remote authenticated users to cause a denial of service (uninitialized pointer dereference and server crash) or possi…
|
CWE-399
Resource Management Errors
|
CVE-2013-3969
|
2024-11-21 10:54 |
2013-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286328
|
- |
|
samsung
|
shr-5082
shr-5162
|
Cross-site scripting (XSS) vulnerability in Samsung SHR-5162, SHR-5082, and possibly other models, allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO.
|
CWE-79
Cross-site Scripting
|
CVE-2013-3964
|
2024-11-21 10:54 |
2013-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286329
|
- |
|
grandstream
|
gxv_device_firmware
gxv3500
gxv3501
gxv3504
gxv3601
gxv3601hd\/ll
gxv3611hd\/ll
gxv3615w\/p
gxv3615wp_hd
gxv3651fhd
gxv3662hd
|
Cross-site request forgery (CSRF) vulnerability in goform/usermanage in Grandstream GXV3501, GXV3504, GXV3601, GXV3601HD/LL, GXV3611HD/LL, GXV3615W/P, GXV3651FHD, GXV3662HD, GXV3615WP_HD, GXV3500, an…
|
CWE-352
Origin Validation Error
|
CVE-2013-3963
|
2024-11-21 10:54 |
2013-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286330
|
- |
|
grandstream
|
gxv_device_firmware
gxv3500
gxv3501
gxv3504
gxv3601
gxv3601hd\/ll
gxv3611hd\/ll
gxv3615w\/p
gxv3615wp_hd
gxv3651fhd
gxv3662hd
|
Cross-site scripting (XSS) vulnerability in Grandstream GXV3501, GXV3504, GXV3601, GXV3601HD/LL, GXV3611HD/LL, GXV3615W/P, GXV3651FHD, GXV3662HD, GXV3615WP_HD, GXV3500, and possibly other camera mode…
|
CWE-79
Cross-site Scripting
|
CVE-2013-3962
|
2024-11-21 10:54 |
2013-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
